I've noticed that a sandbox escape was fixed, I wonder if this would have been enough to get malware running on the system.